Overview

overview

10

Static

static

10

f0615222ef...ab.exe

windows7-x64

10

f0615222ef...ab.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    f0615222efdb2699a7d869641bcf7eab.exe

  • Size

    5.3MB

  • MD5

    f0615222efdb2699a7d869641bcf7eab

  • SHA1

    e346c26ede7d5e6e97bc5f9578a3c7dc5853e4af

  • SHA256

    216af63fedbf9379d7d2f6b52eb81d3b19a1310fa0cb365a6121788b2b48baa0

  • SHA512

    d0a817eeaa3ecd507e778fc1422a0989d116d0d635d976924681176e17e9d7a38f1d9963954def8892bf9483ba6de989595114e2da009281e2b2489796e34a16

  • SSDEEP

    49152:+a2+8ZkbcfOPIMmuv2d2cWfGmsQZ0Wf8f8QlWuWzVjnbXGp8mih7NUfXUu4tEqN5:+aTX1HlUUdG/Mul2rq/aReDkizMeQUa

Score
10/10
zgrat

Malware Config

Signatures

  • Detect ZGRat V1 1 IoCs
  • Zgrat family
    zgrat
  • .NET Reactor proctector 1 IoCs

    Detects an executable protected by an unregistered version of Eziriz's .NET Reactor.

  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • f0615222efdb2699a7d869641bcf7eab.exe
    .exe windows:4 windows x64 arch:x64


    Headers

    Sections